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SYSTEM FOR SECURE, IDENTITY AUTHENTICATED, AND IMMEDIATE 
FINANCIAL TRANSACTIONS AS WELL AS 
5 ACTIVATION OF VARIED INSTRUMENTALITIES 

BACKGROUND OF THE INVENTION 

10 The present invention concerns apparatus and methods for 

controlling access to activation of quite varied instrumentalities, 
for the purpose of allowing such access for only authorized 
persons. More specifically it concerns such a system for quickly, 
easily and automatically controlling authorized person access to 

15 a very wide variety of instrumentalities which a user may wish to 
activate, including, for example, electronic financial account 
systems, confidential data storage systems, electric appliances, 
and numerous other items of personal property, including, for 
example, vehicles, electronic door locks, and firearms* 

20 In recent years there has been a great increase in criminal 

and fraudulent activities involving counterfeiting of personal 
identity, including, for example, credit card fraud, use of stolen 
or counterfeited bank checks, and other schemes by which a seller 
of goods or services, or a bank or other financial institution, is 

25 deceived as to the identity of a person to whom a sale is made, or 
to whom funds are provided. 

Though sellers and banks often require a buyer to produce 
photographic identification, particularly in face-to-face sales 
transactions where checks are given or credit cards are used, or 

30 where checks are cashed, an increasing number of criminals have 
obtained equipment allowing production of authentic-looking but 



counterfeit photographic personal identification documents , e.g. 
counterfeit drivers licenses , in which a photograph of the criminal 
is accompanied by valid identifying information about another 
person. And opportunities for fraud and criminal acts are even 
5 greater where no face-to-face transaction occurs , e.g. in use of 
credit cards to charge items ordered by phone. Criminals have 
often obtained credit card numbers and other valid identifying 
information on card holder fraud victims in varied ways f e.g. by 
stealing mail containing credit card bills or payments. 

10 Conventional identification numerical codes , e.g. social 

security numbers and bank account numbers , offer no real security, 
for authentication of one's identity. One's bank account number 
is inherently disclosed to all of the persons and firms to whom one 
issues checks, and thus may easily come into possession of a 

15 criminal who prepares counterfeit checks. And one's social 
security number is also widely known, and generally accessible to 
anyone with a computer and internet access. 

Though it is a fairly common practice to require that a person 
desiring to make a financial or sales transaction first manually 

20 input a personal identification number ("PIN") into an apparatus 
of the financial system involved, the use of PINs has serious 
disadvantages. Many people have difficulty in remembering PINs, 
and so it is a common practice for PINs to be written on cards 
carried in wallets or purses, so that the PINs are accessible to 

25 unauthorized persons if these are lost are stolen. Or, when a 
customer enters a PIN in a terminal at a sales counter in a crowded 
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store when making a purchase, sales persons or other customers may 
be able to observe the entry so as to learn the PIN. So, there is 
a serious security problem in use of the PIN approach for identity 
authentication. And, there are applications for the present 
5 invention, detailed below, in which even the brief time delay 
required for manual entry of a PIN may have serious disadvantages - 
- in at least one case a literally fatal disadvantage. 

Clearly there is a growing need for a very secure system, an 
apparatus and method, always available to an authorized person when 

10 he/she desires a transaction, to allow only that person to quickly 
and automatically activate a financial or other instrumentality 
which is to perform a useful function for that person. 

The useful applications of such a system go far beyond use in 
sales or other financial transactions, and cover also a very wide 

15 variety of non-financial instrumentalities which the authorized 
person may regularly activate. For example, any item of personal 
property which performs some useful or desirable function, could 
be made subject to activation by only an authorized person, by such 
a system. Examples could include, but are not limited to motor 

20 vehicles, firearms, electric appliances, electric locks, sound 
systems, television sets, cameras, tape recorders, camcorders, and 
VCRs. 

In order to be operable only by the authorized person through 
use of such a system, an instrumentality needs to itself possess 
25 one key element of the system, which might be generally described 
as "smart means", for recognizing personal identity authentication 
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information to be provided by other elements of the system, and for 
allowing activation of the instrumentality only by the authorized 
person. 

There is a need for such a system which may be used with any 
"smart" item of functional personal property, for a reason going 
far beyond the need to reduce criminal and fraudulent activity in 
financial transactions: All such items of smart personal property 
will be useless to thieves, because they simply will not function 
as intended after theft. So, as more and more items of personal 
property are manufactured and marked as being smart items, such a 
system offers the real possibility of eliminating the theft of all 
such items of functional personal property. 

The need that such a system be always available to the 
authorized person, and the security need, are both served, in the 
present invention, by the approach of using a Personalized 
Authenticated Controller means apparatus (hereafter "PAC"), which 
authenticates identity of the authorized person and communicates 
with the smart instrumentality through a communication means, and 
using a PAC of a form which, in some versions of the invention, may 
be worn by the user, in contact with his body. Note that the term 
"his" is used only for brevity herein with reference to a user, 
without any intended limitation as to user gender. 

The security need is met, with redundancy, by two features of 
the invention. In forms of the invention used by having the user 
make hand contact with the smart instrumentality, the communication 
means, allowing communication of identity authentication 



information between the PAC and the smart instrumentality , is, in 
one form of the invention, a means for allowing wave communication 
entirely through body tissues of the user, so that such 
communications may not readily be observed or interfered with by 
others . 

And, in case the worn form of the PAC is removed from contact 
with the user's body, e.g. in being temporarily removed for 
bathing, another and redundant security feature is that the PAC 
includes means to both sense said removal and require re- 
authentication of identity when the PAC is once again in contact 
with a person's body. 

The security need is also met, with redundancy, by use of a 
PAC which has means to continually determine that the PAC is worn 
by the user, e.g. by continually sensing unique identifying body 
characteristics of the user, e.g. retinal patterns, and/or 
> periodically requiring the user to enter identifying information. 
This feature offers redundancy in relation to the means for sensing 
removal of the worn form of PAC and requiring re-authentication 
of identification after removal, since it will alternatively serve 
the security need even if there is a malfunction of, or intentional 
defeat of, the means for sensing removal of the PAC from the user's 
body. 

Another security advantage of the invention is that the 
authorized person identity authentication signal, sent by the PAC 
to the instrumentality, will be a signal which will not contain 
the information which was received by the PAC from the user and 



used by the PAC to determine that the user is the authorized 
person. So, e.g., if the user enters a code number into the PAC, 
that code number never leaves the PAC. 

The need for speed in allowing the user to activate the smart 
instrumentality is met by the present invention, because the PAC 
continually has the ability to instantly inform the smart 
instrumentality, at any time, not only that the user has issued an 
activation command for activation of the smart instrumentality, but 
also that he is the authorized person, rather than an unauthorized 
person. Serving the need for speed of identity authentication and 
smart instrumentality activation is particularly important in the 
case of such a system for use with a smart handgun. The smart 
handgun of course offers the great safety advantage that it may not 
be fired by the owner's child, or by an intruder who seeks to use 
it against its owner. But if the owner, wearing the PAC, picks up 
the smart handgun to defend his family against an intruder, the 
weapon may be fired immediately by the owner, who may thereby save 
lives of himself and family members. If the owner had to first 
enter a PIN into an apparatus, to activate the smart handgun, that 
small time delay might well be fatal to the owner, against an 
armed intruder. 

The need for quick and automatic operation of the present 
invention, as well as the security need, is served in forms of the 
invention in which there is no PIN or other identifying information 
for the user to remember and reenter into the PAC, through 
inclusion in the PAC, of means to automatically sense unique 



personal identifying body characteristics of the user, e.g. 
fingerprint or retinal patterns , or the user's voice profile. In 
other forms of the invention however, for which it is expected that 
periodic reentry of PIN or similar identifying information will not 
5 pose a problem, the PAC will periodically require re- 
authentication of identity by such means, but the PAC will, after 
each such reentry and until the next time reentry is required, 
remain instantly ready for activation of the smart instrumentality 
by the authorized person. 

10 Finally, other less restrictive embodiments of the present 

invention would be suited to specialized needs as well as to 
transitional adaptation of the concepts and devices. For example, 
a simpler non-worn but handheld PAC, designed to emit a single 
authorized person identity authentication signal upon each 

15 authentication, could be used to transmit verification of this 
authentication in order to complete a single transaction. Such a 
PAC would be suitable for non time-critical occasional uses, but, 
most importantly, would represent the most rapid pathway of 
development to make possible secure and authenticated financial 

20 transactions and in particular secure and authenticated 
transactions over the internet. Such a PAC could be built into a 
personal computer, a computer keyboard, installed between a 
keyboard and a computer, built into a computer mouse (a natural 
form for a fingerprint reader), installed between a mouse and the 

25 computer, built into the computer motherboard, or built into the 
computer processor itself. 
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SUMMARY OF THE INVENTION 

The invention is an apparatus and method for allowing only an 
authorized person to immediately activate varied instrumentalities 
which may include , without limitation, financial transaction 
systems , motor vehicles , electric appliances and firearms. 

Said apparatus has a personalized authenticated controller 
means ("PAC"), comprising, in various claims, combinations of the 
following elements: a user information input means, for allowing 
input of information into said PAC; a data storage means, for 
storing data received by said PAC; a PAC microprocessor means, 
communicating internally with all PAC components, for transferring 
and formatting data, said PAC microprocessor means further 
comprising an authorized person identification means, communicating 
with said data storage means, for continually determining whether 
said user is said authorized person, through analysis of the most 
recently received data identifying said user and through comparison 
of same with reference data identifying said authorized person; and 
for providing for output from said PAC, of an authorized person 
identity authentication signal, if and only if said user is said 
authorized person. 

In various claims said PAC further comprises an 
instrumentality activation means, for allowing said user to send 
an instrumentality activation signal to said instrumentality, 
indicating that said user wishes for said instrumentality to carry 
out said action; a user information output means, for allowing 
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output of information from said PAC; a wearing means f for allowing 
said user to wear said PAC in contact with said user's body; a 
personal characteristics sensor means, for sensing unique 
identifying personal characteristics of said user, and for 
5 communicating data representing said characteristics to said data 
storage means; and a removal sensor means, communicating with said 
wearing means and said data storage means, for sensing removal of 
said PAC from said body of said authorized person and for 
communicating a removal signal indicative of said removal into said 

10 data storage means, and wherein said authorized person 
identification means further comprises means for determination of 
whether any said removal signal has been received into said data 
storage means after receipt of the most recent data identifying 
said user as said authorized person. 

15 Said apparatus also has a communication means, for sending 

communications between said PAC and said instrumentality, which 
communications may be, without limitation, by wave communications 
of electromagnetic or sound waves; said communication means having, 
in some claims, communications security means, for reducing the 

20 risk of any unauthorized detection of or interference with said 
communications, which security means may include means for sending 
said communications through a path passing entirely through a 
portion of said user's body, where the portion of said 
instrumentality receiving said communications is covered by a 

25 portion of said user's body at the end of said path distal from 
said portion of said user's body in contact with said PAC, as where 



said instrumentality is in contact with said user's hand; and which 
security means may alternatively or additionally include means for 
encryption of said communications. 

Said apparatus also comprises, in said instrumentality capable 
5 of performing action desired by said user, a portion of said 
instrumentality comprising an authorized person recognition means, 
communicating with said PAC through said communication means, for 
allowing activation of said instrumentality upon receipt of said 
instrumentality activation signal if and only if said PAC is 

10 currently being used by said authorized person; which 
instrumentality authorized person recognition means may further 
comprise means to determine whether said authorized person identity 
authentication signal is received from said PAC within a 
predetermined time interval before or after receipt of said 

15 instrumentality activation signal; or means to send an 
interrogation signal to said PAC after receipt of said 
instrumentality activation signal, asking for transmission of an 
authorized person identity authentication signal, and for 
determining whether said authorized person identity authentication 

20 signal is received by said instrumentality authorized person 
recognition means within a predetermined time interval after 
transmission of said interrogation signal. 

Said method comprises continually determining whether or not 
a particular person who may seek to activate said instrumentality 

25 is the person who is authorized to do so, and allowing said 
instrumentality to be activated by said person if and only if said 
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person is said authorized person. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Fig. 1 is a perspective view of the personalized authenticated 
controller means ("PAC") of one embodiment of the invention. 

Fig. 2 shows both a plan view of a smart instrumentality 
control console and a side elevational view of the user's forearm 
and hand in contact with said console. In this illustration the 
PAC communicates with the instrumentality by waves passing through 
the user's body. 

Fig. 3 illustrates the use of the invention with a variety of 
smart instrumentalities. In these cases communication occurs by 
waves passing through the user's body. 

Fig. 4 is a side elevational view showing the use of the PAC 
embodiment of fig. l f in the control of a smart door lock. 

Fig. 5 is a perspective view of an alternate embodiment of the 
PAC, in which the PAC communicates with the instrumentality by 
direct line of sight, rather than through a portion of the body of 
the user. 

Fig. 6 shows both a plan view of a smart instrumentality 
control console and a side elevational view of the user's forearm 
and hand in contact with said console. In this illustration the 
PAC embodies the design of fig. 5 which communicates with the 
instrumentality by direct line of sight. 

Fig. 7 is a perspective view showing use of the embodiment of 
the PAC shown in fig. 5, in the control of a smart door lock which 
need not be touched by the user. 
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Fig. 8 illustrates use of the fig. 5 embodiment of the PAC, 
in a system allowing purchase of items directly from smart store 
shelves . 

Fig. 9 shows functional relationships of components of the 
5 PAC, applicable for both embodiments shown in figs. 1 and 5. The 
PAC shown is relatively complex; a simpler version is described 
below in fig. 20. 

Fig. 10 shows functional relationships of the "smart" section 
of an instrumentality. The version shown is relatively complex; 
10 a simpler version is described below in fig. 21. 

Fig. 11 illustrates use of an embodiment of the PAC in which 
the personal characteristics sensor means comprises a means for 
sensing the fingerprint pattern of the wearer. 

Fig. 12 illustrates use of an embodiment of the PAC in which 
15 the personal characteristics sensor means comprises a means for 
analysis of the voice profile of the wearer. 

Fig. 13 illustrates use of an embodiment of the PAC in which 
the personal characteristics sensor means comprises a means for 
analysis of the retinal pattern of the wearer. 
20 Fig. 14A shows an implanted version of the PAC, which could 

be voice activated and communicate via infrared or sound waves. 

Fig. 14B shows a PAC incorporated in a garment sleeve, with 
skin contact available as an option. 

Fig. 15 shows a worn version of the PAC which senses an 
25 invisible coded dye pattern in order to recognize and monitor the 
presence of its owner. Here authentication can occur automatically 
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without need for owner action. 

Fig* 16 shows a version of the PAC incorporated in an eyeglass 
frame. The lenses incorporate beamsplitters which permit retinal 
scanning in the infrared and also display of information by 
projection on the retina. Here authentication can occur 
automatically without need for owner action. 

Fig. 17 shows simple versions of a non-worn PAC which are 
inexpensive to manufacture but require the owner to authenticate 
for each transaction. The version of fig. 17A accepts a user code 
number to verify identity; the version of fig. 17B authenticates 
upon presentation of a matching fingerprint. 

Fig. 18 shows a simple non-worn PAC which authenticates via 
thumbprint , used in conjunction with a computer. The same PAC 
could be used to activate the computer and to transact, through 
the computer , with a remote instrumentality to which the computer 
is connected. 

Fig. 19 shows incorporation of the PACs of fig. 17 in a 
computer , or in a wireless or cell phone, or in a conventional 
telephone. In all cases the PAC may be used both to activate the 
local item initially, and then to transact with a remote 
instrumentality by communication through the local item. 

Fig. 20 shows functional relationships of components of a 
relatively simple non-worn PAC, applicable to both embodiments of 
fig. 17. 

Fig. 21 shows functional relationships of the "smart" section 
of a relatively simple instrumentality. 
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DESCRIPTION OF THE PREFERRED EMBODIMENTS 
Referring now to the drawings, in which like reference numbers 
denote like or corresponding elements , it is useful to first 
5 provide an overview of the main features of the principal 
embodiments; followed by a description of structural and 
operational details; concluding with a non-exhaustive review of 
some possible variations of structural details and applications of 
the invention, among embodiments of particular interest. 
10 1 • Overview of Main Features of Principal Embodiments 

The personalized authenticated controller means ("PAC" ) 10, 
a device similar in appearance to a wristwatch, may be worn, by 
means of a wristband 12, on the user's wrist against the user f s 
skin 14, wristband 12 thus constituting one possible wearing means, 
15 for allowing PAC 10 to be worn in contact with tissues of the 
user's body. 

The PAC 10 also comprises a user information input means, and, 
for some embodiments as further discussed below, a user information 
output means. One possible form of user information input means 

20 is a keypad 16, whereby the user may input an activation command 
for desired activation of an instrumentality and may also input 
user identifying data. The user information input means may also 
include a voice receiving means 18, such as a microphone, for 
receiving user voice signals for user identification by voice 

25 profile and also for user voice command signals for activation of 
an instrumentality 20. For embodiments needing a user information 
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output means, said means may be, for example an LCD screen 22 , 
whereby the user may learn that instrumentality 20 has successfully 
been activated to perform action desired by the user, upon 
verification that the user is the authorized person. The matter 
of whether an embodiment will need to have a user information 
output means, in addition to a user information input means, is 
further discussed below in the section on variations of 
embodiments. 

For some embodiments in which PAC 10 is worn by the user, PAC 
10 also comprises a removal sensor means 24 for generating a 
removal signal indicating any removal of PAC 10 from the skin 14 
of the user since the last authentication that the user is the 
authorized person. 

Said keypad 16, voice receiving means 18, and removal sensor 
means 24 all are in communication with data storage means 26. 

The PAC 10 also comprises a personal characteristics sensor 
means 28, connected to a data storage means 26, for sensing unique 
identifying characteristics of the user of PAC 10, which sensor 
means 28 may for example comprise means for sensing the fingerprint 
pattern of the user, or other unique identifying characteristics, 
as further discussed below. 

The PAC 10 also comprises a transmitting means 30 for 
generating waves, which may be electromagnetic waves, to be sent 
to instrumentality 20, for conveying authorized person identity 
authentication signals and user commands for activation of 
instrumentality 20, and receiving means 32 for receiving waves, 
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which may also be electromagnetic waves , sent to PAC 10 from 
instrumentality 20 , which waves may convey an interrogation signal 
from instrumentality 20 to PAC 10, requesting that PAC 10 send to 
instrumentality 20 an authorized person identity authentication 
5 signal by waves propagated from transmitting means 30. 

In the embodiment shown in figs. 1-4 , the PAC 10 is used in 
activation of an instrumentality 20 having data input/output areas 
34 , containing means for receiving waves transmitted from PAC 10 , 
which areas 34 may also contain means for generating waves to be 

10 sent to PAC 10. 

As seen in fig. 2, in this embodiment the wave transmission 
of communications between PAC 10 and instrumentality 20 , occurs 
entirely inside of the user's skin 14 f within the body of the user. 
This is so because of the placement of transmitting means 30 and 

15 receiving means 32 entirely on the inside of wristband 12 , as shown 
in fig. 1, and because the user places his fingers 36 and the palm 
38 of his hand 40 in contact with, and covering the data 
input/output areas 34 of instrumentality 20. So, it will be 
difficult for any unauthorized person to intercept or jam the 

20 communications, since they pass entirely through the user's body, 
for the entire path between PAC 10 and instrumentality 20. 

This embodiment thus provides a communication means, for 
communications between the PAC 10 and the instrumentality 20, which 
communication means further comprises a communications security 

25 means, one possible form of which was described immediately above, 
for reducing the risk of unauthorized detection and/or interference 
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with said communications. 

As illustrated in fig. 3, this embodiment may be used with a 
very wide variety of smart instrumentalities 20 , having data 
input/output areas 34 with which the user may make contact using 
his hand 40, including, for example, power drills, handguns, 
vehicles, door locks, and cameras. 

Fig. 4 illustrates use of this embodiment of the PAC 10 with 
a smart door lock 42, in which use the communications pass from 
the PAC 10 through the user's hand 40 and his palm 38 into the data 
input/output areas 34 of door lock 42, and vice versa. 

Fig. 5 illustrates an alternate embodiment of the invention, 
in which the PAC 10 is used in activation of an instrumentality 20 
by direct line of sight communication with instrumentality 20, 
without passage of any communications waves through a portion of 
the user's body. The use of this embodiment is illustrated in fig, 
6. Such embodiment may be used, for example, in situations in 
which security of the communications is not as great a concern, as 
in certain applications of the previously described first 
embodiment, and/or for activation of an instrumentality 20 which 
may not be conveniently or safely be touched by the user. The 
transmitting means 30 and the receiving means 32 are on the edge 
of wristband 12, rather than inside it against the user's skin 14, 
so that the communications between PAC 10 and instrumentality 20 
may be accomplished with the waves passing directly through the 
space between them. Fig. 7 illustrates the use of this fig. 5 
embodiment of the PAC in the control of a smart door lock. Since 
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this embodiment lacks the security means for the communications , 
provided by the first embodiment in which the waves pass entirely 
through a portion of the user's body in travelling between the PAC 
10 and the instrumentality 20 , an alternate communications security 
5 means may be provided , if needed , by encryption of the 
communications, in a manner well known in the encryption art. 

As to security it should also be understood that the PAC 10 
itself is secure in that it does not provide any means whereby its 
own programming and functions may be changed by signals received 

10 from the instrumentality 20 or other outside source. 

And, as noted in the background section, another security 
advantage of the invention is that the authorized person identity 
authentication signal, sent by PAC 10 to instrumentality 20, will 
be a signal which will not contain the information which was 

15 received by the PAC 10 from the user and used by the PAC 10 to 
determine that the user is the authorized person. 

As a further illustration of the wide variety of 
instrumentalities 20 with which the PAC 10 might be used in 
different embodiments of the invention, fig. 8 illustrates possible 

20 use of a worn version of the PAC, of the form shown in fig. 5, in 
a system allowing the authorized person to purchase an item 
directly at a smart shelf in a store. The smart shelf would 
contain a terminal constituting part of instrumentality 20, which 
would communicate with PAC 10, for recording the authorized 

25 person's purchase and form of payment, e.g. credit card or bank 
debit card account; the instrumentality 20 would in this case also 
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contain additional means (not shown) for recording the actual 
removal of the purchased item from the store shelf , e.g. a bar code 
scanner behind the array of products on the shelf , or an electronic 
weight scale, contained within the shelf, detecting removal of the 
item from the shelf. 

An indicated in fig. 9, The PAC 10 contains electronic data 
storage means 26, for storage of information received by the PAC 
10, and an authorized person identification means 44, contained in 
an authorized person identification microprocessor 46, which 
authorized person identification means 44 is software programmed, 
in a manner well known in the software programming art, for 
performing the functions of continually monitoring and determining 
whether or not the PAC 10 is currently being worn by the authorized 
person, through analysis of the most recently received user- 
identifying data and through comparison of said data with reference 
data identifying the authorized person, and through determination 
of whether any removal signal was received from removal sensor 
means 24 into data storage means 26, after receipt of the most 
recent data identifying the user as the authorized person. The 
authorized person identification means 44 may also be programmed 
to further comprise a periodic challenge means, requiring the user 
to periodically reenter valid authorized person identifying data, 
using keypad 16, or by voice exemplar for voice profile analysis, 
using voice receiving means 18. This feature of the programming 
of the software of authorized person identification means 44 can 
provide redundancy in event of failure of the removal sensor means 
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24 to sense removal of PAC 10 from contact with the authorized 
person, through either malfunction or an intentional defeating of 
the operation of removal sensor means 24. Said software of 
authorized person identification means 44 is also programmed to 
communicate to transmit to instrumentality 20 through the above- 
described communication means, an authorized person identification 
authentication signal, if and only if the PAC 10 is currently being 
worn by the authorized person. 

And the PAC 10 also includes an instrumentality activation 
means 48, for allowing the wearer to use the PAC 10 to send an 
instrumentality activation signal to the instrumentality 20, said 
means comprising , in addition to the voice receiving means 18, for 
voice activation of instrumentality 20, and keypad 16 for non- 
voice activation of instrumentality 20, software in a PAC 
microprocessor 50 programmed in a manner well known in the software 
arts, to recognize the authorized person's activation command input 
and to cause the instrumentality activation signal to be 
transmitted to instrumentality 20. 

The instrumentality 20 comprises, in addition to an action 
performance feature 52 to allow performance of some action desired 
by the user of the PAC 10, an instrumentality authorized person 
recognition means 54, which comprises software and data storage 
means, in communication with the PAC 10 through the communication 
means described above, for allowing activation of the action 
performance feature 52 of instrumentality 20 upon receipt of an 
instrumentality activation signal if and only if the PAC 10 is 
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currently being used by the authorized person. This may be 
accomplished in the manner further detailed below. 

2. Structural and Operational Details 
Since the electromagnetic waves used in communications between 
5 the PAC 10 and the instrumentality 20, are used for communication 
purposes only and not for power transmission purposes , one may of 
course employ very low power levels for the wave generation , so as 
to avoid any risk of harm to the user from long term exposure to 
the waves , particularly for use of the embodiment in which the 

10 waves pass through body tissue of the user. With suitable 
receiving detector sensitivity, it is expected that only microwatt 
or at most milliwatt power levels would be necessary. 

The removal sensor means 24 , may conveniently be in the form 
of a capacitance sensor, sensing a change in the capacitance 

15 between PAC 10 and the skin 14 of the user, as removal occurs. It 
may readily be seen from the above description of the principal 
embodiments, that authorized person identification authentication 
may be accomplished continually, on an effectively continuous 
basis, in three basic ways: (1.) By employing personal 

20 characteristics sensor means 28 and authorized person 
identification means 44 of PAC 10 to continually recheck unique 
authorized person-identifying characteristics at whatever recheck 
frequency is desired; (2.) By requiring reauthentication of 
authorized person identity immediately after receipt of a removal 

25 signal from removal sensor means 24; and (3.) By periodically 
requiring the user to reenter valid authorized person-identifying 
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data, and thus offering redundancy in case of possible failure of 
functions (1.) and (2.) 

The operation of the instrumentality • s authorized person 
recognition means 54 may be accomplished by programming the 
5 software of that means, in a manner well known in the software 
programming arts, to determine whether an authorized person 
identity authentication signal is received by means 54 from PAC 
10, within a predetermined short time interval before or after 
receipt of an instrumentality activation signal. The time interval 

10 chosen would be short enough, e.g. 1/10 sec, to avoid any 
significant risk that the authorized person identity authentication 
was not valid at the time of issuance of activation command. 
Alternatively, the software of means 54 may be programmed, in a 
well known manner, to send an interrogation signal to PAC 10 

15 immediately after receipt of an instrumentality activation signal 
from PAC 10, asking for PAC 10 to send to instrumentality 20 and 
means 54, an authorized person identity authentication signal, and 
for determining whether said signal is received from PAC 10 within 
a predetermined short time interval, e.g. 1/10 sec, after 

20 transmission of the interrogation signal. 

The general functional relationships of the components of the 
invention, for the various embodiments discussed above, are 
schematically illustrated in fig. 9 for the PAC 10, and fig. 10 for 
the instrumentality 20. 

25 
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3. Some Possible Variations of Structural Details 
And Applications of the Invention 

Those familiar with the art will appreciate that the invention 
may be employed in configurations other than the specific forms 
5 disclosed above , without departing from the essential substance of 
the invention. For example, and not by way of limitation: 

Though electromagnetic waves may be used in communications 
between the PAC 10 and the instrumentality 20, it is to be 
understood that they need not be limited to any particular 
10 frequency or to any particular part of the electromagnetic 
spectrum. For the embodiment in which the waves pass through a 
portion of the user's body, said waves may be, depending upon the 
path length, body tissue transmission characteristics, power levels 
used, and detector sensitivity, be waves in the radio, infrared or 
15 visible light portions of the spectrum, for example. Similarly 
waves in any such parts of the spectrum may be used in the 
embodiment in which the waves pass through the air between the PAC 
10 and the instrumentality 20. 

Nor is it always necessary that electromagnetic waves be used; 
20 sound waves might instead by used, in either above-described 
embodiment of the invention, at least where air or another sound- 
transmitting medium (e.g. water) is present between the PAC 10 and 
instrumentality 20 in the embodiment involving direct wave 
communication between them, as opposed to the embodiment using 
25 communication through the user's body, where sound could also 
generally be used. 

And, the personal characteristics sensor means 28, is not 
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necessarily limited to the above-described means for sensing 
distinctive user characteristics by analysis of fingerprint 
patterns, but might instead be any means for sensing other 
distinctive, identifying user characteristics, e.g. retinal 
5 patterns or voice profiles. 

Persons familiar with the art will understand that details of 
apparatus and methods for sensing distinctive personal 
characteristics by measurement of fingerprint patterns, retinal 
patterns, and voice profiles, are disclosed in prior United States 
10 patents, including the following U.S. patent disclosures which are 
each incorporated herein by this reference: 

Fingerprint Patterns — Patent Numbers: 5,796,858, on 
invention of Zhou et al, figs. 1-9, and text at col. 1, line 43 - 
col. 8, line 28; 5,852,670, on invention of Setlak et al, figs. 
15 1-26 and text at Col. 2, line 61 - col. 14, line 67; 5,963,679, 
on invention of Setlak, figs. 1-26 and text at col. 2, line 60 - 
col. 15, line 17; 

Retinal patterns — Patent Numbers: 5,845,733, on invention 
of Wolf sen, figs. 1-6 and text at col. 1, line 38 - col. 4, line 
20 63; 5,949,521, on invention of Williams et al, figs. 1-4 and text 
at col. 2, line 38 - col. 8, line 34; 5,956,122, on invention of 
Doster, figs. 1-8 and text at col. 2, line 31 - col. 8, line 46; 

Voice Profiles — Patent Numbers: 4,078,154, on invention of 
Suzuki et al, figs. 1-12 and text at col. 1, line 44 - col. 4, 
25 line 51; 5,608,784, on invention of Miller, figs. 1-2 and text 
at col. 1, line 56 - col. 6, line 43; 5,623,539, on invention of 



Bassenyemukasa et al, figs. 1-7 and text at col. 2, line 22 - 
col. 11 , line 11; and 4,234,868, on invention of Radice, figs. 1 - 
4 and text at col. 1, line 4 - col. 4, line 38. 

Whether one is using the methods of looking at the user f s 
voice profile or looking at fingerprint or retinal patterns of the 
user, the software of authorized person identification means 44 of 
PAC 10 may be programmed in a manner well known in the software 
programming arts, to compare the pattern observed by the personal 
characteristics sensor means 28 at a given time, with an 
appropriate reference pattern identifying the authorized person, 
previously stored in the data storage means 26. 

As to the use of the plural form "characteristics" in the 
language "a personal characteristics sensor means, for sensing 
unique identifying personal characteristics of said user, and for 
communicating data representing said characteristics to said data 
storage means", used in the claims and invention summary, it should 
be recognized that a fingerprint pattern is made up of numerous 
individual specific characteristics, as is a retinal pattern, as 
is a voice profile. Use of the plural form "characteristics" 
recognizes that fact, and is not to be understood as meaning that 
multiple methods of personal characteristics sensing are 
necessarily employed in any embodiment of the invention, e.g. 
fingerprint plus voice profile, though they of course might be, for 
enhanced identification security. 

Although forms of personal characteristics sensor means 28 
which function by sensing a voice profile or a fingerprint pattern 
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of the user f would normally require some action by the user each 
time a sensing is done, e.g. speaking to give a voice exemplar or 
applying a finger to sensor means 28 to give a fingerprint pattern, 
it is of course possible to use a personal characteristics sensor 
5 means 28 which does not require any action by the user, e.g. one 
employing retinal pattern scanning, which requires only that the 
user's eyes be open. 

The removal sensor means 24, could be a capacitive sensor, 
but might instead be, for example, a pulse monitor, or an 

10 ultrasonic Doppler blood flow monitor, or a simple switch contained 
in a two-part wristband 12, indicating removal of wristband 12 from 
the user's wrist. 

The data storage means 26 of PAC 10 may, for particular 
embodiments and applications, conveniently include an insertable 

15 smart card or chip, which may be inserted within PAC 10, and which 
may include for example, reference identifying data regarding the 
authorized person, such as, for example, fingerprint pattern 
information, retinal pattern information, or voice profile 
information. 

20 Some variations of possible embodiments and applications of 

the invention are nonexclusively illustrated in figs. 5-11. 

Figs. 11, 12 and 13 illustrate use of embodiments in which the 
personal characteristics sensor means comprises, respectively means 
for sensing a user fingerprint pattern, voice profile, and retinal 
25 pattern, as discussed above. 

Though the wristband 12 has been disclosed as the wearing 
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means for conveniently allowing the user to wear the PAC 10 , other 
wearing means might be employed instead, as indicated in fig. 14. 
The PAC 10 might for example be sewn into an elastically contracted 
garment sleeve, so as to be in contact with the user's arm whenever 
5 the garment was worn (fig. 14B) ; Or, for some high security 
applications, the PAC 10 might have a portion thereof implanted 
within the user's body, with the keypad 16 and voice receiving 
means 18 at or close to the skin surface (fig* 14A) . 
Alternatively, the PAC 10 may be incorporated in a necklace, 

10 necklace pendant, belt, ring, glove, or eyeglasses frame. A 
greater variety of wearing means will be usable, of course, for the 
embodiment in which the PAC 10 need not be in contact with body 
tissues of the user, i.e. where the PAC 10 and instrumentality 20 
communicate directly through space. For that embodiment the PAC 

15 10 need not necessarily be worn at all, and might be offered as a 
separate, hand-operated device to meet certain needs, as discussed 
below. It is believed generally preferable, however, to use a worn 
version of the PAC 10, to insure that it will always be available 
to the user when needed, and to facilitate authentication of 

20 authorized person identity by those methods requiring contact 
between the PAC 10 and the skin 14 of the user's body. 

Although there is great flexibility in the various wearing and 
carrying modes of the PAC, the search for its most convenient 
embodiment should include the consideration that certain wearing 

25 means and personal characteristics sensor means will make it 
possible for the PAC to be self -authenticating, that is, able to 
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monitor and recognize personal characteristics of its owner 
continually without requiring any action on the part of its owner. 
This affords the ultimate in convenience , security , and immediate 
availability for time-critical needs. 
5 With present technology , a self -authenticating PAC could be 

made to recognize its owner based on an invisible pattern of skin 
dyes, as illustrated in fig. 15. Such dyes could be made permanent 
or renewable according to need and preferences of the user. 

Alternatively , a self-authenticating PAC could be realized using 

i 

10 retinal scanning. Current optical display technology is at the 
point where a retinal scanning unit and a visual display device 
could be integrated into an eyeglass frame together with the other 
elements of PAC 10 , resulting in the concept illustrated in fig. 
16 (and see drawing description for fig. 16). Here the fact that 

15 the ports for the transmitting means 30 and receiving means 32 are 
naturally pointed at the item of interest by the user would avoid 
hand motion for devices that could be activated without necessarily 
being touched, such as automatic doors and merchandise vending 
instrumentalities , thus adding further to the convenience afforded 

20 by self -authentication. 

Most of the preceding describes PAC versions causing minimal 
user inconvenience. It is normally desirable to not require the 
user to authenticate his identity at the moment of need, which 
could be time critical in the case of gun control. But for other 

25 applications involving occasional use, where the PAC may be an 
expendable item in hostile hands, a very cheap PAC with no 
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authentication memory would be desirable, which does require user 
identity authentication at the time of need. Fig. 17 shows two 
versions of a very simple non-worn PAC having the essential 
capability of providing positive user identification. Fig. 17A 
5 shows a simple PAC showing only a keypad and a transmitting means. 
When the user verifies his identity, as the authorized person, by 
entering the correct number on the keypad, this PAC responds by a 
statement confirming the user's identity as the authorized person, 
i.e. an authorized person identity authentication signal, to a 

10 remote instrumentality. That statement does not transmit the 
number, e.g. a PIN number, which the user inputs to the PAC; only 
a separate authorized person identity authentication signal, 
recognizable by the instrumentality. And even with such a simple 
PAC, other appropriate communication security measures, discussed 

15 above, e.g. encryption, may be employed. One such authorized 
person identity authentication signal is produced per correct 
number entry, and there is no stored memory of authentication for 
future use. Such a simple PAC could be used in financial 
transactions over standard phone lines, with the user employing the 

20 PAC only to authenticate his identity, and otherwise arranging all 
transaction details, e.g. verbally, without use of the PAC. Fig. 
17B shows a similar simple non-worn PAC, which is instead 
authenticated by the user's fingerprint, producing one authorized 
person identity authentication signal each time the fingerprint is 

25 identified as that of the authorized person. 

Fig. 18 illustrates a similar non-worn version of a very 
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simple PAC, used in connection with a personal computer, in which 
the user could hold down a thumb on the PAC for fingerprint 
recognition which would produce a single authentication statement , 
with other details of the transaction entered through the computer 
5 keyboard. 

With reference to uses of the PAC with a computer system that 
communicates by a phone line with an external instrumentality , 
there are a variety of possible choices as to the location and 
nature of a non— worn form of PAC. The PAC could be located in the 

10 phone line, or in a line to the keyboard (as in fig. 18) or modem. 
Or the PAC could be located in a plug in card, or incorporated into 
a modem or into a protected area of the computer processor itself. 

Fig. 19 shows use of the simple, non-worn PAC of fig. 17 in 
conjunction with a computer, a cell phone, and a conventional 

15 telephone. The PAC could be held next to or built into the devices 
shown and could serve both to initially activate the devices shown 
and subsequently to communicate authenticated user identification 
to a remote instrumentality. 

Figs. 20 and 21 illustrate block diagrams for PAC and 

20 instrumentality embodiments of low complexity which may be 
fabricated during early stages of evolution of the technology. 

Because of the great variety of instrumentalities with which 
different embodiments of the invention may be used, some 
embodiments will not require all of the elements disclosed above. 

25 For example, although use of the invention with a remote financial 
system will normally call for using an embodiment of PAC 10 
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allowing a user to send an instrumentality activation signal to 
instrumentality 20 , as described above, and having a user 
information output means whereby the user may receive information 
from the instrumentality 20, e.g. regarding approval or completion 
5 of a transaction , as also described above, these capabilities would 
not be required for certain other applications. For example, if 
the invention is used in firing a smart handgun, no instrumentality 
activation signal need be sent by PAC 10, since the user attempts 
activation of the gun by finger pressure on the trigger, whereupon 

10 the gun will interrogate PAC 10, asking for an authorized person 
identity authentication signal to be sent by PAC 10, and the gun 
will fire only if said signal is received from PAC 10. Nor is 
there any need, in this application, for PAC 10 to have a user 
information output means to inform the user that the gun has or has 

15 not fired, which will be obvious to the user's senses. 

The very wide variation of the instrumentalities with which 
the invention may be used, and of the functions performed by said 
instrumentalities, has already been indicated above. Additional 
illustration of that variation is afforded by considering that such 

20 possible applications include secure remote voting by telephone; 

security in obtaining medical, financial and other confidential 
information, records and documents, which may be downloaded from 
a data storage facility constituting instrumentality 20, into the 
data storage means 26 of PAC 10; secure electronic employee time 

25 cards, preventing one person from clocking in for another; and 
secure reservation, ticketing and payment for entertainment events 
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ticketing and transportation ticketing, with electronic ticketing 
and other confirmation information being downloaded into the data 
storage means 26 of PAC 10. 

The invention may be used with any instrumentality capable of 
5 performing any action desired to be performed by the user of the 
PAC, provided said instrumentality is capable of both responding 
to an activation command made by said user by performing said 
action, and of determining, as a precondition to said response, in 
the manner described and claimed herein, that said activation 

10 command has been issued by said authorized person rather than by 
an unauthorized person. 

The term "authorized person" is used herein, and in the 
claims, to refer to one who has the right to use the PAC 10 to 
activate the instrumentality 20 to perform a desired action, at a 

15 relevant time. In some cases the authorized person will be the 
owner of both the PAC 10 and the instrumentality 20, e.g. in the 
case in which instrumentality 20 is a smart tool or smart handgun 
belonging to the authorized person who also owns PAC 10. In many 
cases, however, the authorized person may own PAC 10 but not 

20 instrumentality 20, e.g. where instrumentality 20 is owned by a 
financial firm with which the authorized person has an account, 
e.g a bank account or credit card account. And, of course, the 
authorized person may be someone owning neither the PAC 10 nor the 
instrumentality 20, who is authorized by the owner of the PAC 10 

25 and of such an account, to use PAC 10 for activation of 
instrumentality 20. The term "authorized person" is intended to 
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be distinguished, from the term "user", in that a "user" is a person 
who attempts to use PAC 10 to activate instrumentality 20, but the 
user may or may not be an authorized person; and the invention 
allows said activation to occur only if the user is an authorized 
person. 

The scope of the invention is defined by the following claims, 
interpreted in light of the specification, including also all 
subject matter encompassed by the doctrine of equivalents as 
applicable to the claims. 
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